Privacy Policy

Business name: The Legacy Table Ltd

Contact: [email protected]

Last Updated: 4th July 2025

1. Who We Are

This Privacy Policy outlines how The Legacy Table Ltd (“we”, “us”, or “our”) collects, uses, and protects your personal data when you interact with us via our website, landing pages, webinar registrations, and other services.

We are a training, and education business offering services to individuals and organisations in business. For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, we act as the data controller for the personal data we collect.

2. What Personal Data We Collect

We may collect and process the following types of personal information:

First name and last name

Email address

Mobile phone number

General information provided via application forms (e.g., interests, goals, experience, etc.)

3. How We Collect Your Data

We collect data when you:

Schedule an appointment or place an order for any of our services

Register for a webinar or event

Complete an application form

Subscribe to receive emails or updates

Interact with us through ads, emails, or other marketing channels

Use or view our website via your browser’s cookies

4. Why We Collect Your Data

We collect your data to:

Send webinar or event links and related information

Follow up after events to see how we can support you further

Send marketing communications and invitations to future events

Nurture you as a potential client or customer

Process your order, manage your account

Carry out administrative and management of our business agreement

Improve the experience and effectiveness of our services and marketing

5. Lawful basis for processing

We process your data under the lawful bases of:

Contractual obligation. So we can perform the services you contracted us to deliver to you or take steps as you'd like before entering into a contract.

Legitimate Interests:

For direct marketing purposes (e.g., send you information about special offers and discounts on our products and services)

To improve our services and business operations

To prevent fraud and enhance security

Consent. When you have given explicit consent for us to process your data for specific purposes (e.g., subscribe to a newsletter)

Legal obligation. When we are required to process data to comply with legal and regulatory obligations

6. How we store your data

The UK GDPR protects your personal data. Where we transfer your data to third parties outside of the UK, we will ensure that certain safeguards are in place to ensure a similar degree of security for your personal data. Such as:

Adequacy Decisions: Transfers to countries recognised by the UK as providing adequate data protection.

Standard Contractual Clauses: Using approved contractual agreements to protect your data.

If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.

7. Cookies and tracking technologies

We use cookies and similar tracking technologies to enhance user experience and analyse website traffic. For more details, see our Cookie Policy.

8. Who we share your data with

We may share your data with trusted third-party service providers who help us deliver our services, including:

Service Providers: Email platforms, CRM tools, Ad networks, etc.

Professional Advisors: Accountants, Legal advisors, etc.

Regulatory Authorities: When required by law or to protect our rights

8.1 Service providers

Listed below are the key service providers we use to provide elements of our service:

Zapier. Used to synchronise data between the apps we rely on (e.g. CRM, email, support). The platforms process contact details, booking data and other information only to perform these automations. Refer to their privacy policy for more information: https://zapier.com/privacy

Keap / Infusionsoft. A CRM used to send emails and manage our prospect and client experiences. Refer to their privacy policy for more information: https://keap.com/legal/privacy-policy

Funnelr. Used for website and hosting membership and training materials. Refer to their privacy policy for more information: https://funnelr.com/legal/privacy

Microsoft Outlook. Used to email prospects and clients and communicate internally. Refer to their privacy policy for more information: https://www.microsoft.com/en-gb/privacy/privacystatement

Dropbox. Used for data storage and file sharing of client and team data. Refer to their privacy policy for more information: https://www.dropbox.com/en_GB/privacy

Google Drive. Used for data storage and file sharing of client and team data. We use Google Workspace (Gmail, Drive, Docs, Meet) to communicate with clients and collaborate internally. Refer to their privacy policy for more information: https://policies.google.com/privacy?hl=en-GB

monday.com. A cloud-based project and task management tool used to manage team and client work. Refer to their privacy policy for more information: https://monday.com/l/privacy/privacy-policy/

Facebook Ads / Meta Ads platform. Used to show relevant adverts on Facebook & Instagram and to measure their success. The Pixel and Conversions API send Meta a pseudonymous ID, information about the pages you view and (if you submit a form) a hashed version of your email so we can see which ads generate leads. We place these cookies only when you give marketing consent. Refer to their privacy policy for more information: https://www.facebook.com/privacy/policy/

Google Ads / YouTube. Used to show relevant adverts on Google & YouTube and to measure their success. Refer to their privacy policy for more information: https://policies.google.com/privacy?hl=en-GB

Google Analytics 4 (GA4). Helps us understand how visitors use our site (e.g. which pages are slow or confusing). It sets a first-party cookie to distinguish browsers but never gives us your full IP address. Refer to their privacy policy for more information: https://ga4.com/gdpr-privacy-google-analytics-4

Stripe. Used to process payments with our clients. Refer to their privacy policy for more information: https://stripe.com/gb/privacy

Zoom. Used to host video meetings and webinars. Refer to their privacy policy for more information: https://explore.zoom.us/en/privacy/

9. How long we keep your data

We retain your data for as long as necessary to fulfil the purposes outlined above, unless you request deletion or we are legally required to delete it sooner.

10. Your rights under GDPR

You have the right to:

Access: Request a copy of the personal data we hold about you.

Rectification: Ask us to correct any inaccuracies in your personal data.

Erasure: Request the deletion of your personal data under certain conditions.

Restriction: Ask us to limit the processing of your data in certain circumstances.

Objection: Object to the processing of your data for direct marketing or on grounds relating to your particular situation.

Data Portability: Receive your personal data in a structured, commonly used format.

Withdraw Consent: At any time, when processing is based on consent.

To exercise any of these rights, please contact us at [email protected]. We will respond within one month of receiving your request.

If you wish to complain about how we have handled your personal data, please contact our Customer Service Manager by email at [email protected]

Our Customer Service Manager will then investigate your complaint and work with you to resolve the matter.

If you still feel that your personal data has not been handled appropriately according to the law, you can contact the Information Commissioner’s Office in the UK here: https://ico.org.uk/concerns/ and file a complaint with them.

11. How to contact us

If you have any questions or if you'd like to access, update, or delete your data, you can contact us at:

📧 [email protected]